Europa Eidas-node Integration Package — known CVE vulnerabilities
Every CVE whose affected-product data names Europa Eidas-node Integration Package, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-18632 — CVSS 9.8 (critical): European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because an attacker can sign a manipulated SAML…
CVE-2019-18633 — CVSS 9.8 (critical): European Commission eIDAS-Node Integration Package before 2.3.1 has Missing Certificate Validation because a certain ExplicitKeyTrustEvaluat…